CVE-2011-1341

Aimluck Aipo < 4.0.4.0 and Aipo for ASP < 4.0.4.0 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in Aimluck Aipo before 4.0.4.0, and Aipo for ASP before 4.0.4.0, allows remote attackers to hijack the authentication of administrators for requests that modify data.

References (3)

Core 3
Core References
Patch third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2011-000062
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN72854072/index.html

Scores

EPSS 0.0059
EPSS Percentile 43.8%

Details

CWE
CWE-352
Status published
Products (4)
aimluck/aipo 4.0.1.0
aimluck/aipo 4.0.2.0
aimluck/aipo < 4.0.3.0
aimluck/aipo-asp < 3.0.1.0
Published Aug 19, 2011
Tracked Since Feb 18, 2026